Circular Locking Dependency in Linux Kernel's Cgroup Functionality
CVE-2023-53522
What is CVE-2023-53522?
A vulnerability exists in the Linux kernel related to a circular locking dependency between the cpu_hotplug_lock and freezer_mutex. This issue arose from a revision of the core freezer logic, where the atomic increment operation was replaced with a static branch increment in the freezer_apply_state function. The modification introduced complexities in the locking mechanisms, which could lead to deadlocks in systems utilizing cgroups. To mitigate this issue, the correct locking order is crucial, necessitating a change that moves the cpus_read_lock before the freezer_mutex lock in the freezer_change_state function.
Affected Version(s)
Linux f5d39b020809146cc28e6e73369bf8065e0310aa < 3756171b97c307d9df8b8ded1d883eec30172085
Linux f5d39b020809146cc28e6e73369bf8065e0310aa < 34fbb7b45bae20b551dda24337c7761ca13ce69d
Linux f5d39b020809146cc28e6e73369bf8065e0310aa < 57dcd64c7e036299ef526b400a8d12b8a2352f26